As noted in our first post, EFF recently received new documents via our FOIA lawsuit on social network surveillance, filed with the help of UC Berkeley’s Samuelson Clinic, that reveal two ways the government has been tracking people online: Citizenship and Immigration’s surveillance of social networks to investigate citizenship petitions and the DHS’s use of a “Social Networking Monitoring Center” to collect and analyze online public communication during President Obama’s inauguration. This is the second of two posts describing these documents and some of their implications.

In addition to learning about surveillance of citizenship petitioners, EFF also learned that leading up to President Obama’s January 2009 inauguration, DHS established a Social Networking Monitoring Center (SNMC) to monitor social networking sites for “items of interest.” In a set of slides [PDF] outlining the effort, DHS discusses both the massive collection and use of social network information as well as the privacy principles it sought to employ when doing so.

While it is laudable to see DHS discussing the Fair Information Practice Principles [PDF] as part of the design for such a project, the breadth of sites targeted is concerning. For example, among the key “Candidates for Analysis” were general social networking sites like Facebook, MySpace, Twitter, and Flickr as well as sites that focus specifically on certain demographic groups such as MiGente and BlackPlanet, news sites such as NPR, and political commentary sites DailyKos. According to the slides, SNMC looks for “‘items of interest’ in the routine of social networking posts on the events, organizations, activities, and environment” of important events. While the slides indicate that DHS scrutinized the information and emphasized the need to look at credible sources, evidence, and corroboration, they also suggest the DHS collected a massive amount of data on individuals and organizations explicitly tied to a political event.

In addition, while the slides do emphasize the minimization and elimination of “Personally Identifiable Information” (PII) from the public data, the slides note that “[o]penly divulged information excluding PII will be used for future corroboration purposes and trend analysis during the Inauguration period.” Thus, it is unclear whether or not the information was deleted permanently after the inauguration proceedings were complete. Moreover, there have been several recent studies and papers showing how, even without PII, comments and information about people online can be “re-identified” through the use of sophisticated computational techniques and thus create privacy concerns.

Finally, while there have been some reports in the past year of similar social network monitoring for large-scale public events, to date the public has not seen such detailed information about the government’s approach to monitoring, especially on its data preservation practices. As our FOIA lawsuit continues, we hope to learn more about such activities and help bring further transparency and accountability to the ways in which government agencies and law enforcement officials collect and analyze information about us online.

Related Updates

San Francisco, California—Face recognition—fast becoming law enforcement’s surveillance tool of choice—is being implemented with little oversight or privacy protections, leading to faulty systems that will disproportionately impact people of color and may implicate innocent people for crimes they didn’t commit, says an Electronic Frontier Foundation (EFF) ...

Once-secret surveillance court orders obtained by EFF last week show that even when the court authorizes the government to spy on specific Americans for national security purposes, that authorization can be misused to potentially violate other people’s civil liberties. These documents raise larger questions about whether the government can...

The list of companies who exercise their right to ask for judicial review when handed national security letter gag orders from the FBI is growing. Last week, the communications platform Twilio posted two NSLs after the FBI backed down from its gag orders. As Twilio’s accompanying blog post documents...

State agencies in California are collecting and using more data now than they ever, and much of this data includes very personal information about California residents. This presents a challenge for agencies and the courts—how to make government-held data that’s indisputably of...

It’s Spain's turn to take a closer look at the practices of their local Internet companies, and how they treat their customers’ personal data. Spain's ¿Quien Defiende Tus Datos? (Who Defends Your Data?) is a project of ETICAS Foundation, and is part of a region-wide initiative by leading...

It’s Spain's turn to take a closer look at the practices of their local Internet companies, and how they treat their customers’ personal data. Spain's ¿Quien Defiende Tus Datos? (Who Defends Your Data?) is a project of ETICAS Foundation, and is part of a region-wide initiative by leading...

EFF works to push back against unjustified sealing of documents in court cases, including in patent cases where improper sealing is practically routine. The public has a First Amendment right to access court proceedings and this right is violated when documents are sealed without good reason. Ultimately, we hope that...

Former EFF legal intern Holden Benon co-wrote this blog post. Jennifer Parrish, a child care provider in Minnesota who runs a day care out of her home, finds herself at a crossroads due to a recently passed Minnesota law. The law imposes new background check requirements on child care...

EFF fights for technology users. We believe that empowering and protecting users should be baked into laws, policies, and court decisions, as well as into the technologies themselves. Since our founding in 1990, we have paired this goal with the common-sense recognition that in order to properly consider these questions...